CVE-2022-34437
published 2022-10-21CVE-2022-34437: Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. A privileged local malicious user could potentially exploit this…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. A privileged local malicious user could potentially exploit this vulnerability, leading to a full system compromise. This impacts compliance mode clusters.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_powerscale_onefs | 9.1.0.0 – 9.1.0.21 | — |
| dell | emc_powerscale_onefs | 9.2.1.0 – 9.2.1.15 | — |
| dell | emc_powerscale_onefs | 9.3.0.0 – 9.3.0.7 | — |
| dell | powerscale_onefs | >= unspecified < 9.4.0.x | 9.4.0.x |